Security News

Drupal RCE Flaw Exploited in Attacks Days After Patch
2019-02-26 08:00

A vulnerability patched recently in the Drupal content management system (CMS) has been exploited in the wild to deliver cryptocurrency miners and other payloads. The attacks started just three...

Highly Critical Drupal RCE Flaw Affects Millions of Websites
2019-02-21 15:54

Admins should update immediately to fix a remote code-execution vulnerability.

Highly critical Drupal RCE flaw could lead to new Drupalgeddon, patch now!
2019-02-21 11:48

A new Drupalgeddon might be brewing: a highly critical vulnerability affecting all versions of the popular content management framework could allow hackers to take over vulnerable Drupal...

Malicious macros can trigger RCE in LibreOffice, OpenOffice
2019-02-07 06:50

Achieving remote code execution on systems running LibreOffice or Apache OpenOffice might be as easy as tricking users into opening a malicious ODT (OpenDocument) file and moving their mouse over...

Severe RCE Flaw Disclosed in Popular LibreOffice and OpenOffice Software
2019-02-05 11:18

It's 2019, and just opening an innocent looking office document file on your system can still allow hackers to compromise your computer. No, I'm not talking about yet another vulnerability in...

Apple delivers security patches, plugs an RCE achievable via FaceTime
2019-01-23 12:03

Apple has released a new set of updates for its various products, plugging a wide variety of vulnerabilities. WatchOS, tvOS, Safari and iCloud Let’s start with “lightest” security updates: iCloud...

Microsoft Windows RCE Flaw Gets Temporary Micropatch
2019-01-23 12:00

0patch released the fix for the remote code execution vulnerability in Windows, which has a CVSS score of 7.8.

Critical RCE Flaw in Linux APT Allows Remote Attackers to Hack Systems
2019-01-22 16:33

Just in time… Cybersecurity experts this week fighting over Twitter in favor of not using HTTPS and suggesting software developers to only rely on signature-based package verification just because...

0patch releases micropatch for Windows Contacts RCE zero-day
2019-01-22 11:33

ACROS Security, the creators of 0patch, have released a micropatch for a recently revealed zero-day RCE flaw affecting Windows. About the vulnerability and the micropatch Security researcher John...

Researcher releases PoC for Windows VCF file RCE vulnerability
2019-01-16 09:57

A vulnerability that exists in the way Windows processes VCard files (.vcf) can be exploited by remote attackers to achieve execute arbitrary code on vulnerable systems, security researcher John...